rod-trent/KQLMysteries external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

rod-trent/KQLMysteries

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/rod-trent/KQLMysteries)

Close

rod-trent / KQLMysteriesView on GitHubMore

• External links
• Readme badge

The collateral repository for The KQL Mysteries series

☆28Mar 8, 2024Updated 2 years ago

Alternatives and similar repositories for KQLMysteries

Users that are interested in KQLMysteries are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• garybushey / ProgrammingMicrosoftSentinel

  View on GitHub
  Programming Microsoft Sentinel book
  ☆24Dec 13, 2023Updated 2 years ago
• rod-trent / KQL-for-Everything

  View on GitHub
  KQL example queries for working in Azure
  ☆38Dec 1, 2025Updated 6 months ago
• KernelCaleb / Kustonomicon

  View on GitHub
  A series of cloud focused KQL queries for threat hunting and DFIR
  ☆12Oct 21, 2025Updated 7 months ago
• hackcyom / AzureKitty

  View on GitHub
  AzureKitty is an Office 365 and Azure configuration audit tool
  ☆15Jan 28, 2024Updated 2 years ago
• Bert-JanP / Sentinel-Automation

  View on GitHub
  Sentinel Logic Apps, Playbooks and Workbooks to automate enrichment, incident analysis and more.
  ☆120Jan 18, 2026Updated 5 months ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• SCStelz / security-investigator

  View on GitHub
  Automated security investigation tool using Microsoft MCP Servers, GitHub Copilot, Python Modules and custom copilot-instructions.
  ☆211Updated this week
• rod-trent / SentinelKQL

  View on GitHub
  Azure Sentinel KQL
  ☆478Jul 28, 2025Updated 10 months ago
• rod-trent / MustLearnKQL

  View on GitHub
  Code included as part of the MustLearnKQL blog series
  ☆1,173Jan 30, 2026Updated 4 months ago
• le0li9ht / Microsoft-Sentinel-Queries

  View on GitHub
  KQL queries for cyber defense and for solving daily issues
  ☆55Jul 28, 2025Updated 10 months ago
• KnudsenMorten / Copilot4SecurityTools

  View on GitHub
  Copilot for Security Tools
  ☆19Apr 19, 2024Updated 2 years ago
• LearningKijo / KQL

  View on GitHub
  Threat Hunting query in Microsoft 365 Defender, XDR. Provide out-of-the-box KQL hunting queries - App, Email, Identity and Endpoint.
  ☆491Nov 22, 2024Updated last year
• CyberAutomationX / SecureAzCloud-Scripts

  View on GitHub
  ☆99Apr 3, 2026Updated 2 months ago
• securitytoolkit / securitytoolkit.github.io

  View on GitHub
  ☆67Dec 22, 2025Updated 5 months ago
• EEN421 / KQL-Queries

  View on GitHub
  Ian Hanley's deceptively simple KQL queries.
  ☆68Apr 10, 2026Updated 2 months ago
• AI Agents on DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• alexverboon / Hunting-Queries-Detection-Rules

  View on GitHub
  KQL Queries. Microsoft Defender, Microsoft Sentinel
  ☆202Updated this week
• Kaidja / Microsoft-Sentinel

  View on GitHub
  Microsoft Sentinel related content
  ☆38Jan 22, 2025Updated last year
• Azure / terraform-azurerm-avm-res-devopsinfrastructure-pool

  View on GitHub
  Terraform Azure Verified Resource Module for DevOps Pools
  ☆20Jun 9, 2026Updated last week
• ashwin-patil / blue-teaming-with-kql

  View on GitHub
  Repository with Sample KQL Query examples for Threat Hunting
  ☆218Sep 1, 2022Updated 3 years ago
• KostasKoutrou / KQL

  View on GitHub
  KQL Queries for Advanced Hunting / Log Analytics
  ☆13Jan 29, 2026Updated 4 months ago
• rod-trent / OpenAISecurity

  View on GitHub
  Scripts and Content for working with Open AI
  ☆172Apr 18, 2025Updated last year
• lucdekens / Scripts

  View on GitHub
  Collection of my scripts
  ☆12Jun 3, 2016Updated 10 years ago
• rod-trent / Security-Copilot

  View on GitHub
  My personal work with Copilot for Security
  ☆203Jun 27, 2025Updated 11 months ago
• dayofexploits / Nettacker

  View on GitHub
  Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management
  ☆18Jan 24, 2024Updated 2 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• Cloud-Architekt / EntraOps

  View on GitHub
  Community project to classify, identify and protect your privileges based on Enterprise Access Model (EAM)
  ☆274May 7, 2026Updated last month
• ml58158 / Demystifying-KQL

  View on GitHub
  Content Repo for Demystifying KQL Tutorial Series
  ☆74Sep 1, 2024Updated last year
• MxIris-Reverse-Engineering / HopperMCP

  View on GitHub
  A Model Context Protocol server for Hopper Disassembler
  ☆160Apr 13, 2025Updated last year
• jdhitsolutions / Techmentor2023-EventLogMgmt

  View on GitHub
  Session material from my conference presentation at Live360\Techmentor in Orlando,November 2023
  ☆11Nov 14, 2023Updated 2 years ago
• jkerai1 / KQL-Queries

  View on GitHub
  KQL Queries
  ☆42Jun 9, 2026Updated last week
• msdirtbag / MDE-Quickstart

  View on GitHub
  MDE Quickstart is a battle-tested MDE policy set designed to be restored with Intune Backup & Restore
  ☆65Dec 26, 2022Updated 3 years ago
• oliveirt / cActiveDirectorySecurity

  View on GitHub
  The cActiveDirectorySecurity module contains PowerShell Functions which are designed to report on and manipulate Access Control Lists on …
  ☆11Aug 31, 2018Updated 7 years ago
• Versionx10 / X-10-WIFI-V2

  View on GitHub
  ☆14Jun 12, 2025Updated last year
• MWR-CyberSec / AD-CS-Forest-Exploiter

  View on GitHub
  Exploit AD CS misconfiguration allowing privilege escalation and persistence from any child domain to full forest compromise
  ☆134Dec 2, 2023Updated 2 years ago
• AI Agents on DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• Rat5ak / CORUNA_IOS-MACOS_FULL_DUMP

  View on GitHub
  Recovered samples, extracted Wasm/binaries, decoded payloads & analysis scripts from the Coruna iOS/macOS exploit kit (b27.icu). 28 JS mo…
  ☆56May 9, 2026Updated last month
• urpatton / OSD-Wizard-UDI-Replacement

  View on GitHub
  A PowerShell OSD wizard created based on the MDT UDI Wizard functionality
  ☆20May 15, 2025Updated last year
• Azure / forensics

  View on GitHub
  ☆12Mar 28, 2026Updated 2 months ago
• freelancermijan / reconengine

  View on GitHub
  A Powerful Recon Engine
  ☆68Nov 20, 2024Updated last year
• arthur404dev / learn-go

  View on GitHub
  ☆10Jan 8, 2024Updated 2 years ago
• FriedrichWeinmann / DefenderAPI

  View on GitHub
  ☆13May 22, 2024Updated 2 years ago
• mattias-fjellstrom / terraform-professional-book-sample-code

  View on GitHub
  Terraform Professional Book Sample Code
  ☆13Jan 9, 2025Updated last year